Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: iTKzgNFS9XirylDDpTuLFF1L9r5zWcRmbV1WHvbAKFI=
Subject key identifier: 3D:DF:DF:54:86:65:66:AA:0B:FD:EC:5B:2F:88:87:70:02:3D:B8:F6
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 0199187776B1B7C417F90B294357A9415F56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 058D
Signing time: Fri 05 Sep 2025 06:01:46 +0000
Manifest this update: Fri 05 Sep 2025 06:01:46 +0000
Manifest next update: Sat 06 Sep 2025 06:01:46 +0000
Files and hashes: 1: 6bGSQZyXICWLbBfHBORwDUVmEgs.roa (hash: 1jQZKU6KRpYxffMVHliAkA59/J/hUE4iGAwCvJDdSlw=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: 3kbCnkmYSnEjYWVGRaw26VsmNQ6YkZvgVoUyNBDIGhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:77:76:b1:b7:c4:17:f9:0b:29:43:57:a9:41:5f:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Sep 5 06:01:46 2025 GMT
Not After : Sep 6 06:01:46 2025 GMT
Subject: CN=3ddfdf54866566aa0bfdec5b2f888770023db8f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:57:91:1f:0e:dc:79:10:69:9f:e0:14:0e:0b:
c2:f4:c6:f0:3d:ff:e2:81:22:ac:80:01:8a:7f:63:
32:a1:b9:4c:4e:db:cf:5b:19:68:ab:81:df:49:2e:
bc:8f:55:43:63:38:a0:15:5d:7e:e0:fe:2a:a0:48:
52:a7:e6:65:aa:a9:67:97:24:00:10:9d:d8:75:ba:
84:eb:37:2d:4d:11:a8:d2:d1:ea:bd:e1:e9:d6:41:
13:4d:56:87:60:a1:db:7c:22:de:bc:9b:59:2f:1a:
29:7c:9e:03:84:d8:d9:fb:37:32:56:2a:80:be:07:
c7:6c:e3:4a:4f:43:9c:18:da:93:40:ac:bd:3d:38:
1b:f0:1f:b6:ce:3a:6e:df:93:30:ed:f6:60:4a:c5:
59:0a:0e:10:39:82:ce:28:30:3f:33:7d:5a:85:d9:
ba:1b:90:4e:80:7a:9a:92:ea:31:9a:39:de:f1:ac:
d6:a8:d6:a8:9f:b2:62:11:e4:33:ec:92:36:f9:61:
23:40:1d:fe:b5:2f:c2:62:a5:ab:a4:05:36:4c:46:
7b:a7:b3:60:c9:de:ee:35:df:9c:0b:61:91:8e:3e:
1d:e3:a5:ea:e6:f6:d6:ac:20:f0:e9:c7:62:1f:87:
ba:4d:75:61:e8:2e:8d:b2:c0:7f:9d:d3:b3:ed:3d:
d4:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:DF:DF:54:86:65:66:AA:0B:FD:EC:5B:2F:88:87:70:02:3D:B8:F6
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b3:e0:dc:7f:9c:39:8f:d3:16:db:cb:15:15:3b:55:91:7b:
9b:c2:72:61:9e:d8:25:cd:d7:a1:54:dc:98:5b:a0:7d:a3:1e:
29:a8:e6:44:a9:10:1e:cf:7d:09:0f:42:6b:81:f1:98:e3:05:
fd:0c:77:14:24:f4:d4:62:38:44:6d:69:70:70:c9:71:89:6b:
9b:69:11:72:4c:35:bd:c4:87:0e:69:4f:cc:80:bc:c6:3a:d4:
28:f0:d3:13:70:b1:ce:47:56:5a:03:5b:ad:2b:39:ed:98:0e:
5c:01:99:b2:2e:7e:86:e3:0a:c7:c5:f4:cc:da:ac:c7:7b:dc:
b8:87:fd:c9:83:fb:d3:1c:e0:33:21:c3:39:30:81:2a:46:e5:
99:42:e5:8e:a3:8f:b7:ca:c5:30:23:94:1d:14:c6:19:a2:4e:
16:fb:58:c0:c9:bf:a0:89:1e:21:f1:76:da:e2:88:6e:a2:16:
c3:de:62:12:2d:d8:3e:7f:82:19:0b:76:5e:f6:5a:70:d7:3d:
c0:fe:dd:f7:8d:04:50:39:c2:f5:ea:bd:c2:74:f7:46:50:0a:
ef:58:03:ef:37:4c:2f:8e:5e:40:c8:b0:4e:2e:1c:14:e2:db:
91:1d:89:9d:7a:aa:da:c3:3d:c8:dc:ce:ff:19:e3:af:86:94:
26:2f:7e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 10:46:02 2025 by rpki-client